Last update: March 4, 2024
INTRODUCTION
OmniLog ("we" or "us" or "our") respects the privacy of our users ("user" or "you"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our websites (www.omnilog.app and www.omnilogapp.com), its subdomains and our mobile applications, as well as any other media form, media channel, mobile website, product, service or application related or connected thereto (collectively, the "Site"). Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Site.
CHANGES TO OUR PRIVACY POLICY
We keep our Privacy Policy under constant review, updating and improving this page regularly as necessary.
From time to time, we may change this Privacy Policy to accommodate new technologies, industry practices, regulatory requirements or for other purposes. We will provide notice to you if these changes are material and, where required by applicable law, we will obtain your consent. Notice may be by email to you at the last email address you provided us, by posting notice of such changes on the Site, or by other means, consistent with applicable law and your given consent.
We will notify you about any other minor changes by updating the "Last update" date of this Privacy Policy. Any changes or modifications will be effective immediately upon posting the updated Privacy Policy on the Site, and you waive the right to receive specific notice of each such change or modification.
You are encouraged to periodically review this Privacy Policy to stay informed of updates. You will be deemed to have been made aware of, will be subject to, and will be deemed to have accepted the changes in any revised Privacy Policy by your continued use of the Site after the date such revised Privacy Policy is posted.
LAWFUL BASES
We will only collect and process personal data where we have lawful bases. Lawful bases include consent (where you have given consent), contract (where processing is necessary for the performance of a contract with you (e.g. to operate the site or deliver any products or services you have requested) and "legitimate interests". We rely on our legitimate interests as our lawful basis only where those interests are not overridden by the impact on you (unless we have your consent or our processing is otherwise required or permitted by law).
NON-COLLECTION OF YOUR INFORMATION
The Site is a user-friendly platform to monitor and manage personal fitness-related data.
We recognize the intimate and personal nature of the data you input while using the Site's body tracking features (collectively, the "Entries"). Entries include, but are not limited to, body measurements, personal health goals, photos, mood ratings, and progress tracking. We firmly believe in your right to privacy and the confidentiality of this sensitive information. As such, we have instituted a strict policy regarding the non-collection and non-sharing of your Entries.
We do not collect, harvest, analyze, share, review, derive or in any other way utilize your Entries other than to provide you, and only you, with the service and features within the App related to them.
Entries are stored locally on your device. This means the Entries you input into the app never leave your device unless you choose to export it manually for your personal use or if you opt-in to our Cloud Sync feature, as defined in our Terms and Conditions.
Cloud Sync is an optional feature that allows you to automatically synchronize data between your devices. It uses end-to-end encryption (E2EE) and maintains an encrypted backup of your data on our servers to allow your devices to upload and download the current and most up-to-date information whenever the Site has access to an Internet connection and Cloud Sync is enabled in the Site settings.
If you use Cloud Sync, we store your encrypted data to provide the service. This data, including file names, is end-to-end encrypted, as defined in our Terms and Conditions.
You can request that Cloud Sync-related data be deleted at any time in the Site settings. This request does not require an active Subscription, but does requires you to be signed in, as Cloud Sync data is linked to your account.
COLLECTION OF YOUR INFORMATION
While we are committed to the non-collection of personal Entries data, we may collect certain types of other information to enhance the app's functionality, improve user experience, and provide personalized services. This section outlines the categories of information we may collect, which do not include your personal Entries.
Where not required by law and not strictly necessary to provide the App functionalities, we will make data collection opt-in, meaning that we will not collect information from you unless you explicitly allow us to do so. Whenever possible, we will also take the necessary steps to anonymize this data.
We may collect information about you in a variety of ways. The information we may collect on the Site includes:
Personal Data
Personally identifiable information, such as your name, shipping address, email address, and telephone number, and demographic information, such as your age, gender, hometown, and interests, that you voluntarily give to us when you register with the Site or our mobile applications, or when you choose to participate in various activities related to the Site and our mobile applications, such as online chat and message boards. You are under no obligation to provide us with personal information of any kind, however your refusal to do so may prevent you from using certain features of the Site and our mobile applications.
Derivative Data
Information our servers automatically collect when you access the Site, such as your IP address, your browser type, your operating system, your access times, and the pages you have viewed directly before and after accessing the Site. If you are using our mobile applications, this information may also include your device name and type, your operating system, your phone number, your country, your likes and replies to a post, and other interactions with the application and other users via server log files, as well as any other information you choose to provide.
Financial Data
Financial information, such as data related to your payment method (e.g. valid credit card number, card brand, expiration date) that we may collect when you purchase, order, return, exchange, or request information about our services from the Site or our mobile applications. We store only very limited and non-sensitive, if any, financial information that we collect. Otherwise, all financial information is stored by our payment processors and payment service providers (Apple for in-App purchases made on Apple devices and Google for in-App purchases made on Android devices). You are encouraged to review their privacy policy and contact them directly for responses to your questions.
Data From Social Networks
User information from social networking sites, such as Apple's Game Center, Facebook, Instagram, Twitter, including your name, your social network username, location, gender, birth date, email address, profile picture, and public data for contacts, if you connect your account to such social networks. If you are using our mobile applications, this information may also include the contact information of anyone you invite to use and/or join our mobile applications.
Mobile Device Data
Device information, such as your mobile device ID, model, and manufacturer, and information about the location of your device, if you access the Site from a mobile device.
Third-Party Data
Information from third parties, such as personal information or network friends, if you connect your account to the third party and grant the Site permission to access this information.
Data From Contests, Giveaways, and Surveys
Personal and other information you may provide when entering contests or giveaways and/or responding to surveys.
Mobile Applications Information
If you connect using our mobile applications:
USE OF YOUR INFORMATION
Having accurate information about you permits us to provide you with a smooth, efficient, and customized experience. Specifically, we may use information collected about you via the Site or our mobile applications to:
DISCLOSURE OF YOUR INFORMATION
We may share information we have collected about you in certain situations. Your information may be disclosed as follows:
By Law or to Protect Rights
If we believe the release of information about you is necessary to respond to legal process, to investigate or remedy potential violations of our policies, or to protect the rights, property, and safety of others, we may share your information as permitted or required by any applicable law, rule, or regulation. This includes exchanging information with other entities for fraud protection and credit risk reduction.
Third-Party Service Providers
We may share your information with third parties that perform services for us or on our behalf, including payment processing, data analysis, email delivery, hosting services, customer service, and marketing assistance. These include, but are not limited to, Google (such as Google Analytics, Google Firebase, Google Cloud, AdMob, AdSense), Apple, SendGrid and RevenueCat.
Marketing Communications
With your consent, or with an opportunity for you to withdraw consent, we may share your information with third parties for marketing purposes, as permitted by law.
Interactions with Other Users
If you interact with other users of the Site and our mobile applications, those users may see your name, profile photo, and descriptions of your activity, including sending invitations to other users, chatting with other users, liking posts, following blogs.
Online Postings
When you post comments, contributions or other content to the Site or our mobile applications, your posts may be viewed by all users and may be publicly distributed outside the Site and our mobile applications in perpetuity.
Third-Party Advertisers
We may use third-party advertising companies (such as, but not limited to: AdMob, Facebook Ads and AdSense) to serve ads when you visit the Site or our mobile applications. These companies may use information about your visits to the Site and our mobile applications and other websites that are contained in web cookies in order to provide advertisements about goods and services of interest to you.
Affiliates
We may share your information with our affiliates, in which case we will require those affiliates to honor this Privacy Policy. Affiliates include our parent company and any subsidiaries, joint venture partners or other companies that we control or that are under common control with us.
Business Partners
We may share your information with our business partners to offer you certain products, services or promotions.
Offer Wall
Our mobile applications may display a third-party hosted "offer wall." Such an offer wall allows third-party advertisers to offer virtual currency, gifts, or other items to users in return for acceptance and completion of an advertisement offer. Such an offer wall may appear in our mobile applications and be displayed to you based on certain data, such as your geographic area or demographic information. When you click on an offer wall, you will leave our mobile application. A unique identifier, such as your user ID, will be shared with the offer wall provider in order to prevent fraud and properly credit your account.
Social Media Contacts
If you connect to the Site or our mobile applications through a social network, your contacts on the social network may see your name, profile photo, and descriptions of your activity.
Other Third Parties
We may share your information with advertisers and investors for the purpose of conducting general business analysis. We may also share your information with such third parties for marketing purposes, as permitted by law.
Sale or Bankruptcy
If we reorganize or sell all or a portion of our assets, undergo a merger, or are acquired by another entity, we may transfer your information to the successor entity. If we go out of business or enter bankruptcy, your information would be an asset transferred or acquired by a third party. You acknowledge that such transfers may occur and that the transferee may decline honor commitments we made in this Privacy Policy.
We are not responsible for the actions of third parties with whom you share personal or sensitive data, and we have no authority to manage or control third-party solicitations. If you no longer wish to receive correspondence, emails or other communications from third parties, you are responsible for contacting the third party directly.
TRACKING TECHNOLOGIES
Cookies and Web Beacons
We may use cookies, web beacons, tracking pixels, and other tracking technologies on the Site and our mobile applications to help customize the Site and our mobile applications and improve your experience. For more information on how we use cookies, please refer to our Cookie Policy posted on the Site, which is incorporated into this Privacy Policy. By using the Site, you agree to be bound by our Cookie Policy.
Internet-Based Advertising
Additionally, we may use third-party software to serve ads on the Site and our mobile applications, implement email marketing campaigns, and manage other interactive marketing initiatives. This third-party software may use cookies or similar tracking technology to help manage and optimize your online experience with us. For more information about opting-out of interest-based ads, visit the Network Advertising Initiative Opt-Out Tool or Digital Advertising Alliance Opt-Out Tool.
Website Analytics
We may also partner with selected third-party vendors, such as Google Analytics, RevenueCat and others, to allow tracking technologies and remarketing services on the Site and our mobile applications through the use of first party cookies and third-party cookies, to, among other things, analyze and track users' use of the Site and our mobile applications, determine the popularity of certain content and better understand online activity. By accessing the Site, or our mobile applications, you consent to the collection and use of your information by these third-party vendors. You are encouraged to review their privacy policy and contact them directly for responses to your questions. We do not transfer personal information to these third-party vendors. However, if you do not want any information to be collected and used by tracking technologies, you can visit the third-party vendor or the Network Advertising Initiative Opt-Out Tool or Digital Advertising Alliance Opt-Out Tool.
You should be aware that getting a new computer, installing a new browser, upgrading an existing browser, or erasing or otherwise altering your browser's cookies files may also clear certain opt-out cookies, plug-ins, or settings.
THIRD-PARTY WEBSITES
The Site and our mobile applications may contain links to third-party websites and applications of interest, including advertisements and external services, that are not affiliated with us. Once you have used these links to leave the Site or our mobile applications, any information you provide to these third parties is not covered by this Privacy Policy, and we cannot guarantee the safety and privacy of your information. Before visiting and providing any information to any third-party websites, you should inform yourself of the privacy policies and practices (if any) of the third party responsible for that website, and should take those steps necessary to, in your discretion, protect the privacy of your information. We are not responsible for the content or privacy and security practices and policies of any third parties, including other sites, services or applications that may be linked to or from the Site or our mobile applications.
SECURITY OF YOUR INFORMATION
We use administrative, technical, and physical security measures to help protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse. Any information disclosed online is vulnerable to interception and misuse by unauthorized parties. Therefore, we cannot guarantee complete security if you provide personal information.
OmniLog uses Google Cloud Platform ("GCP") and Google Firebase ("Firebase") to persistently store user data and does not host user data on its own premises. Google is a leading cloud provider, and holds industry's best security certifications, third-party audits, documentation and legal commitments. User data sent to OmniLog from around the world is sent to GCP and Firebase data centers located in the United States. We remotely manage such servers and services from our home country, Brazil, through secure and industry standard channels and tools.
As we scale our business, we might have to provision "services" or "servers" (such as "CDNs", "processing nodes" and "data caches") in other countries or regions, as a way to mitigate latency and provide a better experience to users located around the world. On this event, some or all of your data can be stored, transferred, transmitted or replicated in countries other than the United States for the purposes as described in this policy. To the best of our knowledge and capabilities, such new "services" and "servers" will have no less than the same security and privacy standards our main "services" and "servers" have. These new resources are likely to also be provisioned on GCP and Firebase, unless not technologically or economically feasible, and will be bound by this same Privacy Policy and our Terms and Conditions.
Wherever your data is stored, transferred, or processed by us, we will take reasonable steps to safeguard the privacy of your personal information. These steps may include implementing standard contractual clauses where recognized by law, obtaining your consent, or other lawful means of transferring personal information.
All Cloud Sync data is end-to-end encrypted using AES-GCM cipher and 256-bit keys using your device's OS native APIs.
HOW LONG WE KEEP YOUR INFORMATION
We retain personal data during any period in which you have expressed an interest in our products and services, for as long as you have an account with us in order to meet our contractual obligations to you, and for up to six years after that to identify any issues and resolve any legal proceedings. We may also retain aggregate information beyond this time for research purposes and to help us develop and improve our services. You cannot be identified from aggregate information retained or used for these purposes.
POLICY FOR CHILDREN
The Site is intended for use only by individuals who are at least 16 years of age and under no circumstance should be used by individuals under the age of 13. By using the site, you confirm to us that you meet these requirements. If you meet these requirements but are under the minimum legal age in your country, you confirm you have received permission from your parent or guardian before using this Site or sending us personal information.
We do not knowingly solicit information from or market to children under the age of 13. If you become aware of any data we have collected from children under age 13, please contact us using the contact information provided below.
CONTROLS FOR DO-NOT-TRACK FEATURES
Most web browsers and some mobile operating systems and our mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. No uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Privacy Policy.
OPTIONS REGARDING YOUR INFORMATION
Account Information
You may at any time review or change the information in your account or terminate your account by:
Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. However, some information may be retained in our files, including within our backups, to prevent fraud, troubleshoot problems, assist with any investigations, enforce our Terms and Conditions and/or comply with legal requirements. Please note that even after deletion from our active databases, copies of your information may persist in our backup systems for a temporary period until the regular cycle of backup deletion occurs.
Emails and Communications
If you no longer wish to receive correspondence, emails, or other communications from us, you may opt-out by:
If you no longer wish to receive correspondence, emails, or other communications from third parties, you are responsible for contacting the third party directly.
CALIFORNIA PRIVACY RIGHTS
California Civil Code Section 1798.83, also known as the "Shine The Light" law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.
If you are under 18 years of age, reside in California, and have a registered account with the Site or our mobile applications, you have the right to request removal of unwanted data that you publicly post on the Site or our mobile applications. To request removal of such data, please contact us using the contact information provided below, and include the email address associated with your account and a statement that you reside in California. We will make sure the data is not publicly displayed on the Site or our mobile applications, but please be aware that the data may not be completely or comprehensively removed from our systems.
CITIZEN RIGHTS UNDER DATA PROTECTION LAWS
In an era increasingly focused on privacy, numerous data protection laws and regulations have emerged globally, including the General Data Protection Regulation (GDPR), Lei Geral de Proteção de Dados (LGPD), Personal Information Protection and Electronic Documents Act (PIPEDA), and California Consumer Privacy Act (CCPA), among others. While navigating and complying with these evolving legal frameworks can be challenging, especially for individuals and small businesses, we are dedicated to upholding your privacy and data protection rights in full compliance with the law.
If you are protected under data protection laws, you may have the following rights under certain conditions:
You can exercise most of the rights listed above at any time using functionalities within the Site itself. As an alternative, you can also exercise some of the rights listed above at any time by contacting us using the contact information provided below. We will respond to your requests within a reasonable timeframe. Please note that (1) these rights may be limited in certain circumstances as provided by applicable law and (2) before completing your request, we may need to verify your identity or the identity of your authorized representative. We will send you a link to verify your email address and may request additional documentation or information solely for the purpose of verifying your identity.
Our Data Protection Officer can be contacted by
emailing:
andre.lbcosta.dev@gmail.com
CONTACT US
If you have questions or comments about this Privacy Policy, please contact us at:
Andre Leite
andre.lbcosta.dev@gmail.com
Version history